SeArch: a collaborative and intelligent NIDS architecture for SDN-based cloud IoT networks

Nguyen, Tri Gia, Phan, Trung V, Nguyen, Binh T, So-In, Chakchai, Baig, Zubair Ahmed and Sanguanpong, Surasak 2019, SeArch: a collaborative and intelligent NIDS architecture for SDN-based cloud IoT networks, IEEE access, pp. 1-18, doi: 10.1109/access.2019.2932438.

Attached Files
Name Description MIMEType Size Downloads

Title SeArch: a collaborative and intelligent NIDS architecture for SDN-based cloud IoT networks
Author(s) Nguyen, Tri Gia
Phan, Trung V
Nguyen, Binh T
So-In, Chakchai
Baig, Zubair AhmedORCID iD for Baig, Zubair Ahmed orcid.org/0000-0002-9245-2703
Sanguanpong, Surasak
Journal name IEEE access
Start page 1
End page 18
Total pages 18
Publisher Institute of Electrical and Electronics Engineers
Place of publication Piscataway, N.J.
Publication date 2019-08-01
ISSN 2169-3536
2169-3536
Keyword(s) Internet of Things Security
Software Defined Networking
Network Function Virtualization
Machine Learning
Intrusion Detection System
Distributed Cloud Computing
Summary The explosive rise of intelligent devices with ubiquitous connectivity have dramatically increased Internet of Things (IoT) traffic in cloud environment and created potential attack surfaces for cyber-attacks. Traditional security approaches are insufficient and inefficient to address security threats in cloud-based IoT networks. In this vein, Software Defined Networking (SDN), Network Function Virtualization (NFV) and Machine Learning techniques introduce numerous advantages that can effectively resolve cybersecurity matters for cloud-based IoT systems. In this paper, we propose a collaborative and intelligent network-based intrusion detection system (NIDS) architecture, namely SeArch, for SDN-based cloud IoT networks. It composes a hierarchical layer of intelligent IDS nodes working in collaboration to detect anomalies and formulate policy into the SDN-based IoT gateway devices to stop malicious traffic as fast as possible. We first describe a new NIDS architecture with a comprehensive analysis in terms of the system resource and path selection optimizations. Next, the system process logic is extensively investigated through main consecutive procedures, including Initialization, Runtime Operation and Database Update. Afterwards, we conduct a detailed implementation of the proposed solution in an SDN-based environment and perform a variety of experiments. Finally, evaluation results of the SeArch architecture yield outstanding performance in anomaly detection and mitigation as well as bottleneck problem handling in the SDN-based cloud IoT networks in comparison with existing solutions.
Notes In press
Language eng
DOI 10.1109/access.2019.2932438
Indigenous content off
HERDC Research category C1 Refereed article in a scholarly journal
Copyright notice ©2019, IEEE
Persistent URL http://hdl.handle.net/10536/DRO/DU:30128540

Connect to link resolver
 
Unless expressly stated otherwise, the copyright for items in DRO is owned by the author, with all rights reserved.

Versions
Version Filter Type
Citation counts: TR Web of Science Citation Count  Cited 0 times in TR Web of Science
Scopus Citation Count Cited 0 times in Scopus
Google Scholar Search Google Scholar
Access Statistics: 31 Abstract Views, 2 File Downloads  -  Detailed Statistics
Created: Mon, 05 Aug 2019, 10:58:36 EST

Every reasonable effort has been made to ensure that permission has been obtained for items included in DRO. If you believe that your rights have been infringed by this repository, please contact drosupport@deakin.edu.au.